GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
22 advisories
Filter by severity
xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing...
Critical
Unreviewed
CVE-2017-12187
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing...
Critical
Unreviewed
CVE-2017-12184
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension...
Critical
Unreviewed
CVE-2017-12185
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing length validation in XFIXES extension allowing...
Critical
Unreviewed
CVE-2017-12183
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing...
Critical
Unreviewed
CVE-2017-12186
was published
May 13, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S...
Critical
Unreviewed
CVE-2017-12179
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing...
Critical
Unreviewed
CVE-2017-12181
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing...
Critical
Unreviewed
CVE-2017-12180
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing...
Critical
Unreviewed
CVE-2017-12182
was published
May 13, 2022
xorg-x11-server before 1.19.5 was missing extra length validation in ProcEstablishConnection...
Critical
Unreviewed
CVE-2017-12176
was published
May 13, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function...
Critical
Unreviewed
CVE-2017-12177
was published
May 13, 2022
xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function...
Critical
Unreviewed
CVE-2017-12178
was published
May 13, 2022
Apache Tomcat - Authentication Bypass
Critical
CVE-2024-52316
was published
for
org.apache.tomcat:tomcat-catalina
(Maven)
Nov 18, 2024
In DA, there is a possible permission bypass due to an incorrect status check. This could lead to...
Moderate
Unreviewed
CVE-2023-32871
was published
May 6, 2024
fedora-arm-installer up to and including 1.99.16 is vulnerable to local privilege escalation due...
High
Unreviewed
CVE-2017-7496
was published
May 13, 2022
In modem-ps-nas-ngmm, there is a possible undefined behavior due to incorrect error handling....
Moderate
Unreviewed
CVE-2023-52533
was published
Apr 8, 2024
A vulnerability in the Broadband Network Gateway PPP over Ethernet (PPPoE) feature of Cisco ...
Moderate
Unreviewed
CVE-2022-20849
was published
Nov 15, 2024
ecdsa Denial of Service vulnerability in signature verification and signature malleability
High
CVE-2019-14853
was published
for
ecdsa
(pip)
Oct 8, 2019
A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC...
Moderate
Unreviewed
CVE-2020-14383
was published
May 24, 2022
Froxlor contains Unchecked Error Condition
Moderate
CVE-2023-0572
was published
for
froxlor/froxlor
(Composer)
Jan 30, 2023
An Unchecked Error Condition vulnerability in the subscriber management daemon (smgd) of Juniper...
Moderate
Unreviewed
CVE-2022-22160
was published
Jan 20, 2022
grunt-gh-pages before 0.10.0 may allow unencrypted GitHub credentials to be written to a log file
Moderate
CVE-2016-10526
was published
for
grunt-gh-pages
(npm)
Feb 18, 2019
ProTip!
Advisories are also available from the
GraphQL API